Information Security Manager

Information Security Manager

Engage Hub provides industry-leading solutions in mobile and digital communications. Our core technical platform is in use by some of the biggest brands around the globe to deliver exciting mobile and email campaigns. Our company ethos is based on constant product innovation, reliable software engineering and excellent customer service. Although we are a small company, we work with large well-known brands. As a result, we must meet high expectations.

Currently we are recruiting an Information Security Manager to oversee the physical and digital security of our operations and infrastructure and to make sure the data that we manage and process is always safe and secure. The successful candidate will have a high degree of technical competency and will work as an integral part of the IT and Infrastructure team. This role is based in our North London office and reports to the IT Manager.

Key responsibilities:

  • Designing, implementing, and reviewing company-wide security policies, standards, and guidelines;
  • Performing regular risk assessments and implementing appropriate safeguard measures;
  • Conducting security audits of suppliers;
  • Responding to security questionnaires from customers;
  • Assisting external security auditors auditing the company on behalf of customers;
  • Continuously reviewing systems and company procedures from a security point of view;
  • Security training for employees;
  • Overseeing the ISO-27001 accreditation process;
  • Ensuring adherence to regulatory requirements, including GDPR, and effectively communicating such requirements across the business;
  • Supporting the IT function;
  • Regularly reviewing the configuration of systems and servers including (but not limited to) firewalls, VPN routers, databases, and web servers;
  • Reviewing server logs;
  • Monitoring systems for security issues

Essential Skills:  

  • Good interpersonal skills with the ability to communicate, influence and focus on engaging effectively both with senior people in the business and with clients;
  • Significant experience in managing Unix systems (Linux and OpenBSD);
  • A strong background in installing, configuring and using free software/open source packages such as 
Subversion, Postfix, Apache and similar ones;
  • Proven experience with firewall and networking technologies;
  • Meticulous attention to detail;
  • Ability to document systems and procedures to the highest standard;
  • Willingness to run the IT in a free software/open source environment;
  • The ability to work independently as well as part of team;
  • Excellent organisation skills e.g. ability to prioritise and multi task and complete the project within defined timescales;

Desirable Skills:  

  • Experience of implementing and maintaining ISO27001 certification;
  • Demonstrable experience of building and testing Information security breach processes within an IT environment and wider business context (e.g. Ransomware attack, phishing exposures, DOS & DDOS attacks);
  • Clear understanding of Data Protection (process, policy and standards) and the General Data Protection Regulation (GDPR);
  • Information Security certification (e.g. CISSP, CISM) would be ideal;
  • A background in information security management

Apply Here